Compliance and Risk Specialist
Job Type: Permanent
Location: Hampshire
Benefits:
Benefits + Bonus
Salary: Up to £45,000
Details: Compliance and Risk Specialist- ISO27001 – Business Continuity/ Disaster Recovery Hampshire- Up to £45,000 + Benefits and Bonus Our Client, a national telecommunications and media company are looking for a Compliance and Risk Specialist who has proven experience in embedding ISO27001 and similar corporate standards to the Business. The Compliance and Risk Specialist will be responsible for the entire business with a particular focus on the operational aspects of the business, so a technical awareness within Information / IT Security is beneficial. The Compliance and Risk Specialist will act as the SME, with responsibility for the proactive leadership, management, tracking, support, advice, consultancy and direction to the in-scope Business Units to ensure their compliance, risk and BCP/DR obligations are understood, planned remediation activity meets compliance requirements, including performing impact and risk assessments, the controls and policy implementation is adequate and quality evidence is provided to effectively measure control performance against the Company’s Standards. The Compliance and Risk specialist will be working in areas concerning Business Continuity and Disaster Recovery and so a firm understanding of the processes and procedures behind these will advantageous. Ensuring compliance with relevant standards such as ISO 27001, NGN224, ISO 20000, ISO9001 and other auditing authorities (Internal and customer driven). Managing the rectification of any deficiencies and/or risk areas Working with the business units to ensure the achievement and maintenance of appropriate security controls Working with the business unit to develop the Operations Business Continuity and DR plans in line with contractual and ISO compliance - planning test programmes and managing any deficiencies in the DR & BC processes Provide risk analysis, interpreting technical and security issues and assessing the level of risk for Operations, and managing the Operations Risk Register providing reports and analysis as required Required: Extensive proven career in implementing and operating effective Information Security and Compliance. Thorough understanding and experience of Risk Management methodology and process. Thorough understanding and experience of business continuity and disaster recovery management processes. Practical experience in operating an effective and compliant Information Security Management System (ISMS) A detailed working understanding of standards and legislation, including ISO9001, ISO20000, ISO27001, ISO 27005, IS27031, NGN224 and BS25999. Data Protection Act 1998, Electronic Communications Act 2000, Sarbanes Oxley Act 2002 A security based professional qualification desirable (e.g. CISSP, CISM, CISA) Experience of working in a Service Management environment with knowledge of ITIL. Experience of using Lean/Lean Six Sigma tools and methodologies an advantage. Experience of Network Operation in a Telecoms environment with a general understanding of I.T, Broadband Internet, Telecoms and Digital Television desirable. SC clearance or willingness to undertake To find out more information please do not hesitate to contact Ian Edwards on 020 7618 0965 or via email [email protected]. Sponsorship is not available for this position and so only candidates with the legal right to work in the U.K can be considered.
Skills Required :
Apply: IE951
Featured: Yes
Date: Sunday, 03 June 2025
< return to the jobs